Visual Studio 2022@17.13.0 Security Vulnerabilities and Issues — Visual Studio 2022@17.13.0 CVE List

Lucene search

MicrosoftVisual Studio 202217.13.0

8 matches found

CVE•added 2025/03/11 5:16 p.m.•146 views

CVE-2025-24070

Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network.

7CVSS6.9AI score0.00125EPSS

CVE•added 2025/04/08 6:16 p.m.•93 views

CVE-2025-29804

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.1AI score0.00044EPSS

CVE•added 2025/05/13 10:15 p.m.•92 views

CVE-2025-26646

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

8CVSS7.8AI score0.00047EPSS

CVE•added 2025/04/08 6:15 p.m.•78 views

CVE-2025-26682

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.13114EPSS

CVE•added 2025/03/11 5:16 p.m.•75 views

CVE-2025-24998

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.00241EPSS

CVE•added 2025/03/11 5:16 p.m.•69 views

CVE-2025-25003

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.00241EPSS

CVE•added 2025/05/13 5:16 p.m.•60 views

CVE-2025-32702

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

7.8CVSS7.6AI score0.00121EPSS

CVE•added 2025/05/13 5:16 p.m.•56 views

CVE-2025-32703

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

5.5CVSS6.7AI score0.00108EPSS